401trg / utilitiesLinks
This repository contains tools used by 401trg.
☆20Updated 4 years ago
Alternatives and similar repositories for utilities
Users that are interested in utilities are comparing it to the libraries listed below
Sorting:
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- Bro integration with osquery☆15Updated 2 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 6 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Detect kerberos attacks in pcap files☆29Updated 9 years ago
- ☆13Updated 6 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Triage automation for suspect URLs☆13Updated 6 years ago
- A series of Bro Scripts created for detection purposes.☆19Updated 8 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- A Yara Lua output script for Suricata☆20Updated 6 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated 2 years ago
- Bro analyzer that detects Google's QUIC protocol☆10Updated 4 years ago
- The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided☆33Updated 4 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 6 years ago
- event shipper for Carbon Black Defense notifications☆10Updated 2 years ago
- Yara intergrated into BurpSuite☆48Updated 9 years ago
- hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…☆60Updated last year
- Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation☆63Updated 4 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- Public rules and samples for various automations through LimaCharlie.io☆13Updated 3 years ago
- Repository for my ATT&CK analysis research.☆69Updated 6 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Updated 2 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆42Updated 6 years ago